summaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
* nixos/matrix-synapse: update docs•••* Update attribute names in code examples (* -> settings.*). * Use `nix-shell -p` rather than `nix run` because the example won't work with the current default Nix. * Update config values for `element-web`. * Fix link to `element-web` security considerations. * Make the synapse expression even smaller and use callout-lists to explain the code. * Document how to correctly deploy the shared registration secret. [1] https://spec.matrix.org/latest/client-server-api/#getwell-knownmatrixclient (cherry picked from commit 899a37d1909be0d4a11102bbdaeaebef793a5177) origin/backport-178858-to-release-22.05Maximilian Bosch2022-07-041-95/+140
* Merge pull request #180101 from NixOS/backport-179989-to-release-22.05•••[Backport release-22.05] sigi: 3.4.0 -> 3.4.2Bobby Rong2022-07-041-3/+3
|\
| * sigi: 3.4.0 -> 3.4.2•••(cherry picked from commit b4cbc03186a339351bf78eae7a36905ce3ee8252) origin/backport-179989-to-release-22.05hiljusti2022-07-041-3/+3
* | Merge pull request #180116 from NixOS/backport-179347-to-release-22.05•••[Backport release-22.05] kdigger: 1.2.0 -> 1.2.1Bobby Rong2022-07-041-13/+5
|\ \
| * | kdigger: 1.2.0 -> 1.2.1•••(cherry picked from commit 383ee3c194359482710e25cf07ab071cf5ad10cd) 06kellyjac2022-07-041-13/+5
|/ /
* | Merge pull request #180003 from NixOS/backport-179784-to-release-22.05•••[Backport release-22.05] signal-desktop: 5.47.0 -> 5.48.0Jörg Thalheim2022-07-041-2/+2
|\ \
| * | signal-desktop: 5.47.0 -> 5.48.0•••https://github.com/signalapp/Signal-Desktop/releases/tag/v5.48.0 (cherry picked from commit 1fc2aa773b8a3054929a8f7527440b9eeaa6e2c8) origin/backport-179784-to-release-22.05kilianar2022-07-031-2/+2
* | | Merge pull request #180002 from NixOS/backport-179723-to-release-22.05•••[Backport release-22.05] signal-desktop: revert “Allow overriding the spell checker language”Jörg Thalheim2022-07-041-17/+1
|\ \ \
| * | | signal-desktop: revert "Allow overriding the spell checker language (#44456)"•••This reverts commit 9ef1406a9918f3414d081563ba34084c5e187a58. Signal Desktop removed this functionality when changing spell checkers: - signalapp/Signal-Desktop@6a517e4ef94cd76bd31d94ea3aad7af8e1da0360 - signalapp/Signal-Desktop@4a8f5db0a49f67426237731245bebdcc75c2a5c0 (cherry picked from commit cb7ddc7f34db03b4fc479df592c85b7176c85db2) origin/backport-179723-to-release-22.05Andrew Kvalheim2022-07-031-17/+1
* | | | Merge pull request #180110 from NixOS/backport-180076-to-release-22.05•••[Backport release-22.05] gnome.gnome-remote-desktop: 42.2 -> 42.3maxine [they]2022-07-041-2/+2
|\ \ \ \
| * | | | gnome.gnome-remote-desktop: 42.2 -> 42.3•••(cherry picked from commit 19c31e6b87086271790f8619acc3ac24d5d81352) R. Ryantm2022-07-041-2/+2
|/ / / /
* | | | Merge pull request #180104 from NixOS/backport-180097-to-release-22.05•••[Backport release-22.05] atlassian-jira: 8.22.2 -> 8.22.4Maximilian Bosch2022-07-041-2/+2
|\ \ \ \ | |_|_|/ |/| | |
| * | | atlassian-jira: 8.22.2 -> 8.22.4•••includes fix for CVE-2022-26135 https://confluence.atlassian.com/jira/jira-server-security-advisory-29nd-june-2022-1142430667.html https://confluence.atlassian.com/jirasoftware/issues-resolved-in-8-22-4-1141486890.html (cherry picked from commit 50dff7c678cf9f17ae27f6465a21ff366eb18f08) WilliButz2022-07-041-2/+2
|/ / /
* | | offlineimap: remove optional insecure kerberos dependency•••was marked insecure in c8dbbe5c3236dbc5445b31c69e5bf8251f172c0d because of https://github.com/apple/ccs-pykerberos/issues/31 (cherry picked from commit 5fec5ebf378850c794ddc1406c8aa6bae39a9838) ajs1242022-07-031-1/+0
* | | python310Packages.vyper: mark insecure•••(cherry picked from commit 587c6869266d1e6b2471d50fa2cd7d2564a5835f) Robert Schütz2022-07-031-0/+3
* | | python310Packages.waitress: 2.1.1 -> 2.1.2•••https://github.com/Pylons/waitress/blob/v2.1.2/HISTORY.txt fixes CVE-2022-31015 (cherry picked from commit 701b918dc3ce1565cb440ed792b0b8813c3576ea) Robert Schütz2022-07-031-2/+2
* | | python310Packages.rencode: 1.0.6 -> unstable-2021-08-10•••fixes CVE-2021-40839 (cherry picked from commit 2447fc09ec68ebfc6b1c1de9931ec8deffdabb68) Robert Schütz2022-07-031-6/+18
* | | python310Packages.pypdf2: 1.26.0 -> 1.28.4•••https://github.com/py-pdf/PyPDF2/blob/1.28.4/CHANGELOG fixes CVE-2022-24859 (cherry picked from commit a1b860e67a25f4609b2ab17dbb297cb74a323a73) Robert Schütz2022-07-031-2/+2
* | | python310Packages.notebook: 6.4.10 -> 6.4.12•••fixes CVE-2022-29238 (cherry picked from commit 7b3c3d6cedc5864f5fe20c03ff2ad27c06544d94) Robert Schütz2022-07-031-2/+2
* | | python310Packages.kerberos: mark insecure•••(cherry picked from commit c8dbbe5c3236dbc5445b31c69e5bf8251f172c0d) Robert Schütz2022-07-031-2/+4
* | | python310Packages.jupyter_server: 1.11.2 -> 1.17.1•••https://github.com/jupyter-server/jupyter_server/blob/v1.17.1/CHANGELOG.md fixes CVE-2022-24757 and CVE-2022-29241 (cherry picked from commit b9f50b7803a0d85bea6ef51ab3a75ec43add7a57) Robert Schütz2022-07-031-18/+15
* | | python310Packages.jupyterhub: 1.3.0 -> 1.5.0•••https://github.com/jupyterhub/jupyterhub/blob/1.5.0/docs/source/changelog.md fixes CVE-2021-41247 (cherry picked from commit af1bf5dc715da311163012c33fd4d4ad79f0f0ee) Robert Schütz2022-07-031-2/+3
* | | python310Packages.flower: mark insecure•••(cherry picked from commit cb8ab777b86338badbb9b4ed9ffd0490a760cf9a) Robert Schütz2022-07-031-0/+3
* | | python310Packages.flask-caching: 1.10.1 -> 1.11.1•••(cherry picked from commit be19a33c51f09b5bcad64554a64d51e3b5beea4b) Robert Schütz2022-07-031-6/+22
* | | python310Packages.cookiecutter: 1.7.3 -> 2.1.1•••fixes CVE-2022-24065 (cherry picked from commit 68ead458d39660e346f05276c890184d4ec7ea68) Robert Schütz2022-07-031-5/+13
* | | python310Packages.beaker: mark insecure•••(cherry picked from commit 12fb03569f3ef59b627d9b03440809f0a97e759d) Robert Schütz2022-07-031-0/+5
* | | Merge pull request #176339 from amjoseph-nixpkgs/pr/backport/174691•••[Backport release-22.05] arm-trusted-firmware: unfree only if hdcp.bin usedArtturi2022-07-031-4/+21
|\ \ \
| * | | arm-trusted-firmware: unfree only if hdcp.bin used; otherwise delete it•••The `unfreeIncludeHDCPBlob` parameter was introduced as a result of this reviewer request: https://github.com/NixOS/nixpkgs/issues/148890#issuecomment-1032002903 The default value `unfreeIncludeHDCPBlob?true` causes a change in the `meta.license` field for all of the subpackages within `pkgs/misc/arm-trusted-firmware/`, and results in them needing `NIXPKGS_ALLOW_NONFREE=1`. For non-Rockchip platforms the file hdcp.bin does not get included in the output; the blob is for a Synopsys HDCP core that is currently used only by Rockchip (although other companies could license it from Synopsys in the future). Therefore on non-Rockchip we can delete hdcp.bin before building instead of changing the license. This preserves the ability to build them without NIXPKGS_ALLOW_NONFREE=1. Let's do that. Deleting hdcp.bin ensures that we won't be caught by surprise if some future non-Rockchip Arm CPU licenses the same Synopsys HDCP core that Rockchip is using. Use easier-to-follow names for controlling the blob inclusion/exclusion. Also, if the blob is believed to be unnecessary, delete it beforehand so we will know if we were wrong about that belief. Co-authored-by: Sandro <sandro.jaeckel@gmail.com> (cherry picked from commit 8485bfc9bf50a11e410a6834334d44280cc644ac) Adam Joseph2022-06-041-4/+21
* | | | Merge pull request #180004 from NixOS/backport-179975-to-release-22.05maxine [they]2022-07-031-2/+2
|\ \ \ \
| * | | | gtk4: 4.6.5 -> 4.6.6•••(cherry picked from commit f797cceab2dccde19d2a86f3e0f09af9506861a1) origin/backport-179975-to-release-22.05R. Ryantm2022-07-031-2/+2
| | |_|/ | |/| |
* | | | Merge pull request #179967 from bobby285271/pantheon-stable•••[22.05] Pantheon 6.1 updates 2022-07-02Bobby Rong2022-07-032-2/+14
|\ \ \ \
| * | | | pantheon.elementary-camera: backport two fixes from 6.2.0•••On master, elementary-camera has been updated to 6.1.0 in 63c45ddaf8 and 6.2.0 in a173b861ff. Bobby Rong2022-07-031-0/+12
| * | | | pantheon.elementary-files: 6.1.3 -> 6.1.4•••(cherry picked from commit 07428e9c2f417a4cddd1c50e4a257ff55f70eb2d) Bobby Rong2022-07-031-2/+2
* | | | | Merge pull request #179997 from NixOS/backport-179988-to-release-22.05•••[Backport release-22.05] pantheon.switchboard-plug-pantheon-shell: 6.1.0 -> 6.2.0Bobby Rong2022-07-031-2/+2
|\ \ \ \ \
| * | | | | pantheon.switchboard-plug-pantheon-shell: 6.1.0 -> 6.2.0•••(cherry picked from commit eccf2df672c3358d3f067d0603a3125a703c884c) R. Ryantm2022-07-031-2/+2
| | |_|_|/ | |/| | |
* | | | | Merge pull request #179996 from NixOS/backport-179987-to-release-22.05•••[Backport release-22.05] pantheon.switchboard-plug-network: 2.4.2 -> 2.4.3Bobby Rong2022-07-031-2/+2
|\ \ \ \ \ | |_|_|/ / |/| | | |
| * | | | pantheon.switchboard-plug-network: 2.4.2 -> 2.4.3•••(cherry picked from commit 867a0b9c690ac274101a3c8c6aaf367a991e16e8) R. Ryantm2022-07-031-2/+2
| |/ / /
* | | | Merge pull request #179787 from NixOS/backport-179264-to-release-22.05•••[Backport release-22.05] signal-desktop: fix missing tray iconSandro2022-07-031-0/+1
|\ \ \ \ | |/ / / |/| | |
| * | | signal-desktop: fix missing tray icon•••Fixes: #178892 (cherry picked from commit c22a517b752dd7e8c059c5f92b9cc467d246c5d6) teutat3s2022-07-011-0/+1
* | | | Merge pull request #179547 from NixOS/backport-179477-to-release-22.05•••[Backport release-22.05] Linux kernel updates 2022-06-28Maximilian Bosch2022-07-038-44/+44
|\ \ \ \
| * | | | linux/hardened/patches/5.4: 5.4.200-hardened1 -> 5.4.201-hardened1•••(cherry picked from commit 7d58f625e2bf0306255174aa0319f280b32f88b0) Maximilian Bosch2022-06-291-5/+5
| * | | | linux/hardened/patches/5.18: 5.18.6-hardened1 -> 5.18.7-hardened1•••(cherry picked from commit 57d38001ad6b0c64ee9c83d5d24ec1464fc343ce) Maximilian Bosch2022-06-291-5/+5
| * | | | linux/hardened/patches/5.15: 5.15.49-hardened1 -> 5.15.50-hardened1•••(cherry picked from commit d7973cd50258a26105c42111894d53192f5f4705) Maximilian Bosch2022-06-291-5/+5
| * | | | linux/hardened/patches/5.10: 5.10.124-hardened1 -> 5.10.125-hardened1•••(cherry picked from commit 3cf33ad016f3aeba8aba13cf68228ada4798924b) Maximilian Bosch2022-06-291-5/+5
| * | | | linux/hardened/patches/4.19: 4.19.248-hardened1 -> 4.19.249-hardened1•••(cherry picked from commit 14479c95a203204f6b82d956ebb657ba7ef3ca28) Maximilian Bosch2022-06-291-5/+5
| * | | | linux/hardened/patches/4.14: 4.14.284-hardened1 -> 4.14.285-hardened1•••(cherry picked from commit 299b49b53941cccf42aaf32e3bd2e1d75d71f847) Maximilian Bosch2022-06-291-5/+5
| * | | | linux: 5.4.200 -> 5.4.201•••(cherry picked from commit dfc38c7baa9ed3d107921f444de6a76f1a3c5cbd) Maximilian Bosch2022-06-291-2/+2
| * | | | linux: 5.18.6 -> 5.18.7•••(cherry picked from commit a13afa2d90d98c3005032e5e7df9002b31134339) Maximilian Bosch2022-06-291-2/+2
| * | | | linux: 5.15.49 -> 5.15.50•••(cherry picked from commit 17996e10f9cccb35fc16e86d8f9dd2c12fc78130) Maximilian Bosch2022-06-291-2/+2
| * | | | linux: 5.10.124 -> 5.10.126•••(cherry picked from commit 48f604ef690b2845ff20c0ac63134cfecff5724b) Maximilian Bosch2022-06-291-2/+2
generated by cgit v1.2.3 (git 2.52.0) at 2026-01-17 05:43:11 +0000